contador web Saltar al contenido

Researchers “cheat” Face ID by wearing glasses with duct tape on a unconscious person

Trying to bypass any biometrics method (which actually works) doesn't just seem like a really complicated thing. O Face ID, for example, has a false positive rate of 1: 1,000,000 (much smaller than Touch IDwhich of 1: 50,000).

But there are researchers who work precisely to find that one in 1,000,000 chance and who thinks, looks. During the safety conference Black Hat 2019, a group of researchers demonstrated a peculiarly forced way to circumvent Face ID biometric authentication. What did they wear? glasses, masking tape and preferably a disagreeing person, as disclosed by ThreatPost.

Can't imagine how that would work? I explain to them: Face ID has an additional (and optional) security layer, which uses the user's attention to verify that the person is looking at the iPhone before unlocking it. This feature, however, may not work properly if the user is wearing dark glasses, and it was precisely from this point that the researchers took advantage.

The group was able to exploit this Face ID ?gap? using only a pair of glasses, dubbed ?X-Glasses,? and two layers of ribbons (one white and one black) under the lens.

<img data-attachment-id = "674293" data-permalink = " fool-face-id-usando-oculos-com- duct-tape-on-a-unconscious person / 09-x-glasses / "data-orig-file =" X-glasses.jpg "data-orig-size =" 3264,2448 "data-comments-opened =" 1 "data-image-meta =" {"aperture": "0", "credit": "", " camera ":" "," caption ":" "," created_timestamp ":" 0 "," copyright ":" "," focal_length ":" 0 "," iso ":" 0 "," shutter_speed ":" 0 "," title ":" "," orientation ":" 0 "}" data-image-title = "X-Glasses Presentation" "data-image-description ="


"data-medium-file ="×450.jpg "data-large-file =" https: / /×945.jpg "src =" 2019/08/09-X-glasses.jpg "alt =" Introducing "X-Glasses" "class =" wp-image-674293 "srcset =" /uploads/2019/08/09-X-glasses.jpg 3264w,×225.jpg 300w, https : //×450.jpg 600w, 2019/08/09-X-glasses-1260×945.jpg 1260w "sizes =" (max-width: 3264px) 100vw, 3264px "/>

Although it sounds simple, this type of technique is not exactly easy to perform, as it requires the glasses to be on the iPhone owner's face for everything to be scanned. One has to be asleep or unconscious for the process to work.

By carefully placing the tape over the lenses of a pair of glasses and placing it on the face of the victim, the researchers demonstrated how they could circumvent the Face ID in a specific setting. The attack itself is difficult, as the malicious agent would need to figure out how to place the glasses on an unconscious victim without waking him up.

One thing is certain: the invasion is much less elaborate than other methods of circumventing Face ID which have already emerged. We comment, for example, that a company has developed hyperrealistic masks to fool iPhone biometric authentication. Or, even simpler: just having a twin brother can get around Ma's system.

via iMore | Image: Halfpoint /

Rate this post